CVE-2026-24372
Published: 25 March 2026
Summary
CVE-2026-24372 is a high-severity Authentication Bypass by Spoofing (CWE-290) vulnerability. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 22.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SI-10 (Information Input Validation).
Deeper analysis
CVE-2026-24372 is an Authentication Bypass by Spoofing vulnerability in the Subscriptions for WooCommerce plugin developed by WP Swings. The flaw enables Input Data Manipulation and affects the plugin in all versions from n/a through 1.8.10.
Unauthenticated attackers can exploit this vulnerability remotely over the network with low attack complexity and no user interaction required, as reflected in its CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Successful exploitation allows attackers to bypass authentication mechanisms, resulting in high confidentiality impact by potentially accessing sensitive data without authorization.
The Patchstack advisory documents this vulnerability and provides further details, accessible at https://patchstack.com/database/Wordpress/Plugin/subscriptions-for-woocommerce/vulnerability/wordpress-subscriptions-for-woocommerce-plugin-1-8-10-bypass-vulnerability-vulnerability?_s_id=cve.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-15568
Vulnerability details
Authentication Bypass by Spoofing vulnerability in WP Swings Subscriptions for WooCommerce subscriptions-for-woocommerce allows Input Data Manipulation.This issue affects Subscriptions for WooCommerce: from n/a through <= 1.8.10.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Authentication bypass in public-facing WooCommerce/WordPress plugin directly enables remote exploitation of web applications without credentials or interaction.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires timely identification, reporting, and correction of flaws like the authentication bypass in Subscriptions for WooCommerce plugin versions <=1.8.10.
Enforces validation of input data to block manipulation exploited for authentication spoofing and bypass.
Mandates enforcement of approved authorizations to prevent unauthenticated access to sensitive data via the spoofing vulnerability.